%20--%3e%3csvg%20version='1.1'%20id='Layer_1'%20x='0px'%20y='0px'%20viewBox='0%200%20107.30001%20140.79999'%20xml:space='preserve'%20sodipodi:docname='mind_logo_positief.svg'%20width='107.30001'%20height='140.79999'%20xmlns:inkscape='http://www.inkscape.org/namespaces/inkscape'%20xmlns:sodipodi='http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd'%20xmlns='http://www.w3.org/2000/svg'%20xmlns:svg='http://www.w3.org/2000/svg'%3e%3cdefs%20id='defs29'%20/%3e%3csodipodi:namedview%20id='namedview29'%20pagecolor='%23505050'%20bordercolor='%23eeeeee'%20borderopacity='1'%20inkscape:showpageshadow='0'%20inkscape:pageopacity='0'%20inkscape:pagecheckerboard='0'%20inkscape:deskcolor='%23d1d1d1'%3e%3cinkscape:page%20x='0'%20y='0'%20width='107.30001'%20height='140.79999'%20id='page2'%20margin='0'%20bleed='0'%20/%3e%3c/sodipodi:namedview%3e%3cstyle%20type='text/css'%20id='style1'%3e%20.st0{fill:%231F1FA3;}%20.st1{fill:url(%23SVGID_1_);}%20.st2{fill:url(%23SVGID_00000033333245342322421190000001486717665348835473_);}%20.st3{fill:url(%23SVGID_00000075852413222229328580000001131059578544388517_);}%20%3c/style%3e%3cg%20id='g9'%20transform='translate(-21.299999,-20.6)'%3e%3clinearGradient%20id='SVGID_1_'%20gradientUnits='userSpaceOnUse'%20x1='4.8695998'%20y1='142.78'%20x2='99.248901'%20y2='35.348301'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop4'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop5'%20/%3e%3c/linearGradient%3e%3crect%20x='21.299999'%20y='64'%20class='st1'%20width='19.9'%20height='97.400002'%20id='rect5'%20style='fill:url(%23SVGID_1_)'%20/%3e%3clinearGradient%20id='SVGID_00000007421653842672228110000012418760815982452352_'%20gradientUnits='userSpaceOnUse'%20x1='23.7796'%20y1='159.3925'%20x2='118.1588'%20y2='51.9608'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop6'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop7'%20/%3e%3c/linearGradient%3e%3cpath%20style='fill:url(%23SVGID_00000007421653842672228110000012418760815982452352_)'%20d='M%2072.3,64%20H%2064%20v%2075.2%20H%2085.1%20V%2076.8%20C%2085.1,69.7%2079.4,64%2072.3,64%20Z'%20id='path7'%20/%3e%3clinearGradient%20id='SVGID_00000072986549029232277750000008760038133176911550_'%20gradientUnits='userSpaceOnUse'%20x1='20.501699'%20y1='156.51289'%20x2='114.881'%20y2='49.0812'%3e%3cstop%20offset='0'%20style='stop-color:%2347EFF0'%20id='stop8'%20/%3e%3cstop%20offset='1'%20style='stop-color:%23297BFF'%20id='stop9'%20/%3e%3c/linearGradient%3e%3cpath%20style='fill:url(%23SVGID_00000072986549029232277750000008760038133176911550_)'%20d='M%2073.6,20.6%20H%2064%20v%2019.9%20h%209.6%20c%2019.3,0%2035.1,15.7%2035.1,35.1%20v%2044.3%20h%2019.9%20V%2075.6%20c%200,-30.3%20-24.7,-55%20-55,-55%20z'%20id='path9'%20/%3e%3c/g%3e%3c/svg%3e)
Name
ovmf
Version
edk2-sta
Type
library
Description
OVMF - UEFI firmware for Qemu and KVM
Licenses
BSD-2-Clause-Patent
PURL
-
CPE
cpe:2.3:*:*:edk2:edk2-stable202202:*:*:*:*:*:*:*
Other Versions#
Patches#
#
Title
Author
Resolve
1
NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45230 Patch
"Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
CVE-2023-45230
2
BaseTools: fix gcc12 warning
Gerd Hoffmann <kraxel@redhat.com>
3
NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45234 Unit
Doug Flick <dougflick@microsoft.com>
CVE-2023-45234
4
NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45232 Unit Tests
Doug Flick <dougflick@microsoft.com>
CVE-2023-45232
CVE-2023-45233
5
NetworkPkg: : Adds a SecurityFix.yaml file
"Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
6
EmbeddedPkg/Hob: Integer Overflow in CreateHob()
Gua Guo <gua.guo@intel.com>
CVE-2022-36765
7
SecurityPkg: DxeTpm2MeasureBootLib: SECURITY PATCH 4118 - CVE
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36764
8
ovmf: Update to latest
Steve Langasek <steve.langasek@ubuntu.com>
9
SecurityPkg: : Adding CVE 2022-36763 to SecurityFixes.yaml
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36763
10
SecurityPkg: DxeTpmMeasureBootLib: SECURITY PATCH 4117 - CVE
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36763
11
NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45231 Patch
Doug Flick <dougflick@microsoft.com>
CVE-2023-45231
12
MdeModulePkg: Potential UINT32 overflow in S3 ResumeCount
Hongxu Jia <hongxu.jia@windriver.com>
CVE-2024-1298
13
ovmf: update path to native BaseTools
Ricardo Neri <ricardo.neri-calderon@linux.intel.com>
14
NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45231 Unit Tests
Doug Flick <dougflick@microsoft.com>
CVE-2023-45231
15
NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Patch
"Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
CVE-2023-45229
16
NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Unit
"Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
CVE-2023-45229
17
BaseTools: makefile: adjust to build in under bitbake
Ricardo Neri <ricardo.neri-calderon@linux.intel.com>
18
NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45232 Patch
Doug Flick <dougflick@microsoft.com>
CVE-2023-45232
CVE-2023-45233
19
BaseTools: fix gcc12 warning
Gerd Hoffmann <kraxel@redhat.com>
20
MdePkg: Fix overflow issue in BasePeCoffLib
Doug Flick <dougflick@microsoft.com>
CVE-2024-38796
21
StandaloneMmPkg/Hob: Integer Overflow in CreateHob()
Gua Guo <gua.guo@intel.com>
CVE-2022-36765
22
SecurityPkg: : Adding CVE 2022-36764 to SecurityFixes.yaml
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36764
23
NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45234 Patch
Doug Flick <dougflick@microsoft.com>
CVE-2023-45234
24
reproducible
Alexander Kanavin <alex.kanavin@gmail.com>
25
NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45235 Unit
Doug Flick <dougflick@microsoft.com>
CVE-2023-45235
26
SecurityPkg: DxeTpmMeasureBootLib: SECURITY PATCH 4118 - CVE
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36764
27
SecurityPkg: DxeTpm2MeasureBootLib: SECURITY PATCH 4117 - CVE
"Douglas Flick [MSFT]" <doug.edk2@gmail.com>
CVE-2022-36763
28
NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Related
Doug Flick <dougflick@microsoft.com>
CVE-2023-45229
29
debug prefix map
Alexander Kanavin <alex.kanavin@gmail.com>
30
UefiPayloadPkg/Hob: Integer Overflow in CreateHob()
Gua Guo <gua.guo@intel.com>
CVE-2022-36765
31
NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45230 Unit
"Doug Flick via groups.io" <dougflick=microsoft.com@groups.io>
CVE-2023-45230
32
NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45235 Patch
Doug Flick <dougflick@microsoft.com>
CVE-2023-45235
Vulnerabilities#
Name
Analysis
Description
Patched
EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.
Patched
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Patched
EDK2's Network Package is susceptible to a buffer overflow vulnerability when
handling Server ID option
from a DHCPv6 proxy Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Patched
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Patched
EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option in the Destination Options header of IPv6. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Availability.
Patched
EDK2's Network Package is susceptible to an infinite loop vulnerability when parsing unknown options in the Destination Options header of IPv6. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Availability.
Patched
EDK2's Network Package is susceptible to an out-of-bounds read
vulnerability when processing Neighbor Discovery Redirect message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
Patched
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality, Integrity and/or Availability.
Patched
EDK2's Network Package is susceptible to an out-of-bounds read
vulnerability when processing the IA_NA or IA_TA option in a DHCPv6 Advertise message. This
vulnerability can be exploited by an attacker to gain unauthorized
access and potentially lead to a loss of Confidentiality.
Patched
EDK2 is susceptible to a vulnerability in the CreateHob() function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
Patched
EDK2 is susceptible to a vulnerability in the Tcg2MeasurePeImage() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
Patched
EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.
Exploitable
Buffer overflow in the Reclaim function in Tianocore EDK2 before SVN 16280 allows physically proximate attackers to gain privileges via a long variable name.